Workplace by Direct is seeking a driven and experienced Cyber Security Manager to join our team in Sioux Falls, SD. In this role, you’ll lead cybersecurity operations across both traditional IT and Operational Technology (OT) environments, including industrial control systems (ICS), SCADA networks, and connected infrastructure.
You’ll oversee day-to-day security operations within our Managed Services and Managed Security Services environment, ensuring high-quality security outcomes for both internal systems and external clients. This role blends hands-on technical expertise with leadership, client engagement, and strategic direction to ensure environments remain secure, compliant, and resilient across both IT and OT domains.
About Workplace by Direct
Workplace by Direct is part of the Direct Companies family, a trusted business technology solutions provider serving small and mid-sized businesses. We deliver professional IT and OT consulting and management services, with a focus on reliability, innovation, and customer success.
We foster a team-oriented, trust-driven workplace that values collaboration, excellence, and long-term relationships. Our mission is to create secure, scalable technology solutions that empower businesses and industrial operations alike.
Why You’ll Love Working Here
You’ll have the opportunity to shape and expand our cybersecurity program into OT and critical infrastructure security, mentor team members, and drive innovation in both IT and industrial environments—supported by a collaborative and forward-thinking organization.
Key Responsibilities
Security Operations & Leadership
Lead daily cybersecurity operations across IT and OT/ICS environments, including monitoring, alert triage, and incident response
Oversee security visibility into industrial networks, PLCs, HMIs, and SCADA systems
Provide team leadership, scheduling, and operational oversight to ensure full coverage and rapid response
Act as an escalation point for complex IT and OT security incidents
Coordinate people, tools, and technologies across hybrid IT/OT environments
Monitor and report on SLAs, KPIs, and client security posture
Incident Response & Threat Management
Lead incident response efforts across enterprise and industrial control system environments
Conduct root cause analysis for both IT breaches and OT disruptions (e.g., process anomalies, unauthorized control changes)
Utilize threat intelligence, MITRE ATT&CK and MITRE ATT&CK for ICS, and adversary TTPs
Analyze logs, network traffic, and OT protocol data (Modbus, DNP3, OPC, etc.)
Support detection and response for threats targeting critical infrastructure and production systems
Security Solutions & Client Delivery
Support multi-tenant MSSP environments, including segmented OT networks and Purdue Model architectures
Advise clients on securing industrial environments, IIoT devices, and edge systems
Assist in onboarding clients with OT asset discovery, network mapping, and risk assessments
Collaborate across engineering, sales, and customer success to deliver integrated IT/OT security solutions
Communicate with stakeholders during incidents, including executive-level briefings
Process Improvement & Compliance
Develop and maintain playbooks for both IT and OT incident response scenarios
Ensure alignment with frameworks such as NIST, CIS Controls, ISO 27001, and NIST 800-82 (ICS security)
Improve processes around vulnerability management, including patching constraints in OT environments
Support compliance initiatives (HIPAA, PCI DSS, SOC 2) and critical infrastructure standards where applicable
Identify automation opportunities including SOAR for hybrid IT/OT workflows
Mentorship & Team Development
Lead and mentor analysts across IT and OT security disciplines
Build internal capability in industrial cybersecurity awareness and response
Provide coaching, training, and career development
Foster a collaborative, high-performance culture
Support hiring and onboarding of cybersecurity talent
Qualifications
5–8+ years of experience in cybersecurity or security operations
1–3+ years in a leadership or senior role
Strong background in SOC operations, incident response, and monitoring
Experience with OT/ICS security, industrial networks, or critical infrastructure environments (preferred)
Hands-on experience with SIEM platforms and detection methodologies
If you’re a proactive leader passionate about cybersecurity across both enterprise IT and industrial/OT environments, we’d love to hear from you. Join us and help secure the future of modern workplaces and connected operations.